Search Results

Search found 236 results on 10 pages for 'xss'.

Page 1/10 | 1 2 3 4 5 6 7 8 9 10  | Next Page >

• What am I missing in this ASP.NET XSS Security Helper class?

  - by smartcaveman

  I need a generic method for preventing XSS attacks in ASP.NET. The approach I came up with is a ValidateRequest method that evaluates the HttpRequest for any potential issues, and if issues are found, redirect the user to the same page, but in a away that is not threatening to the application. (Source code below) While I know this method will…

  Read the article

• XSS as attack vector even if XSS data not stored?

  - by Klaas van Schelven

  I have a question about XSS Can forms be used as a vector for XSS even if the data is not stored in the database and used at a later point? i.e. in php the code would be this: <form input="text" value="<?= @$_POST['my_field'] ?>" name='my_field'> Showing an alert box (demonstrate that JS can be run) on your own browser is trivial…

  Read the article

• Is there Java counterpart for Aspnet 4's <%: %> XSS prevention?

  - by Tomas Tintera

  I'm developer moving from C# to Java. Heard about new ASP net feature. <%: %. It renders object with html encoding. Only these impolementing IHtmlString interface are not encoded (to prevent double encoding). See more in…

  Read the article

• Multiple cross-site scripting (XSS) vulnerabilities in OpenStack Horizon

  - by Ritwik Ghoshal

  CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution CVE-2014-3473 cross-site scripting (XSS) vulnerability 4.3 OpenStack Horizon Solaris 11.2 11.2.1.5.0 CVE-2014-3474 cross-site scripting (XSS)…

  Read the article

• XSS prevention in PHP

  - by newbie

  I need to prevent XSS attacks in PHP code, is there nay good and easy library for this?

  Read the article

• XSS prevention in Java

  - by newbie

  How can I prevent XSS attacks in Java? Are there any good libraries for that?

  Read the article

• Preventing HTML character entities in locale files from getting munged by Rails3 xss protection

  - by Chris S

  We're building an app, our first using Rails 3, and we're having to build I18n in from the outset. Being perfectionists, we want real typography to be used in our views: dashes, curled quotes, ellipses et al. …

  Read the article

• Alternative to using c:out to prevent XSS

  - by lynxforest

  I'm working on preventing cross site scripting (XSS) in a Java, Spring based, Web application. I have already implemented a servlet filter similar to this example…

  Read the article

• XSS filtering function in PHP

  - by codecowboy

  Hi, Does anyone know of a good function out there for filtering generic input from forms? Zend_Filter_input seems to require prior knowledge of the contents of…

  Read the article

• How Google Wave cannot be XSS injected by a widget

  - by Axel

  Hello, If you've used google wave you probabely seen that you can insert widgets that are made by third parties without approval. the Question is : How this…

  Read the article

• Why Google Wave & iGoogle cannot be XSS injected by a widget

  - by Axel

  Hello, If you've used google wave or iGoogle you probabely seen that you can insert widgets that are made by third parties without approval. the Question is…

  Read the article

• What are the best practices for avoid xss attacks in a PHP site

  - by rikh

  I have PHP configured so that magic quotes are on and register globals are off. I do my best to always call htmlentities() for anything I am outputing that…

  Read the article

• PHP XSS Prevention WhiteListing

  - by pws5068

  My site utilizes a WYSIWYG editor for users to update their accounts,enter comments, and send private messages. The editor (CKEditor) is great for only…

  Read the article

• Prevent XSS but allow all characters?

  - by Dr Hydralisk

  How can I prevent XSS but allow any characters to be used? Like I can post HTML code on a forum like…

  Read the article

• What makes an input vulnerable to XSS?

  - by vtortola

  Hi! I've been reading about XSS and I made a simple form with a text and submit input, but when I…

  Read the article

• preg_replace on xss code

  - by proyb2

  Can this code help to sanitize malicious code in user submit form? function rex($string) {…

  Read the article

• A way around XSS?

  - by rushonerok

  In my page I have an script reference to the autoHeight.js file below. I also have an…

  Read the article

• How Do I Prevent a XSS Cross-Site Scripting Attack When Using jQueryUI Autocomplete

  - by theschmitzer

  I am checking for XSS vulnerabilities in a web application I am developing. This…

  Read the article

• Using MS Anti XSS library for sanitizing HTML

  - by user102533

  In the intent of preventing XSS attacks, I am updating a page in which we have a…

  Read the article

• XSS exploit when JavaScript is disabled

  - by snaken

  I'm getting pretty frustrated trying to make McAffee whitelist a supposed…

  Read the article

• Xss redirect and cookies

  - by user1824906

  I found Active XSS on one site. I need to steal cookies and after it to…

  Read the article

• Valid Email Addresses - XSS and SQL Injection

  - by PAAMAYIM_NEKUDOTAYIM

  Since there are so many valid characters for email addresses, are there…

  Read the article

• Payment gateways and XSS

  - by Rowan Parker

  Hi all, I'm working on a website which takes payment from a customer.…

  Read the article

• Java website protection solutions (especially XSS)

  - by Mark

  I'm developing a web application, and facing some security problems. …

  Read the article

• XSS attack to bypass htmlspecialchars() function in value attribute

  - by Setzer

  Let's say we have this form, and the possible part for a user to…

  Read the article

1 2 3 4 5 6 7 8 9 10  | Next Page >